The New York Attorney General's Office reached an agreement with Refuah Health Center to invest USD1.2 million in cybersecurity measures after allegedly failing to protect patient data from a ransomware attack. The company must pay USD450,000 in penalties and take steps such as upkeep an information security program, require multifactor authentication to remotely access data and conduct audits to ensure limited user access.
10 Jan. 2024
Health care provider agrees to invest in cybersecurity protections
RELATED STORIES
A view from DC: The growing reckoning over location data
Notes from the IAPP Canada: CRA breach a 'cautionary tale'
Notes from the IAPP Europe: October wrap-up
Council of Europe's Framework Convention on AI and its global implications
Notes from the Asia-Pacific region: Amid festive backdrop, Singapore unveils secure AI guidelines